[If you saw this from my gmail account, sorry for the duplication, but I
had no responses, so figure it may have been eaten along the way.]
Hey folks,
We have been hit with a lot of phishing attempts lately, and while our
users are pretty good about it, I'd like to be able to implement a
recipient blacklist on the server.
What I have so far is:
================================
## In the acl_check_rcpt section, below "accept local_parts =
postmaster : abuse"...
deny message = The recipient ($local_part@$domain) is suspected of
phising....
acl = acl_black_local
================================
## Then down below, right before the Routers section....
acl_blacklist_local:
deny hosts = lsearch;/usr/local/etc/exim.host_blacklist
deny senders = lsearch;/usr/local/etc/exim.sender_blacklist
deny recipients = lsearch;/usr/local/etc/exim.recipient_blacklist
================================
In the /usr/local/etc/exim.recipient_blacklist file, I just have email
addresses...
phisher@???
However, the mail is still sent out. What am I missing?
Thanks!
--
Kevin Colagio: Systems Analyst, Reef Geek, and Perpetual Student
Computing and Information Technology, SUNY at Geneseo, South 124
colagio@??? (585) 245-5577 http://www.geneseo.edu
Experience is a harsh teacher, the tests are first, the lessons follow.
